<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-CN" lang="zh-CN">
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta name="viewport" content="width=device-width, initial-scale=1.0">
	<meta name="keywords" content="SecWiki，维基，安全，资讯，专题，导航，RSS聚合，Ｗeb安全，Ｗeb安全，移动平台，二进制安全，恶意分析，网络安全，设备安全，运维技术，编程技术，书籍推荐">
	<title>SecWiki周刊（第209期)</title>
	<link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/bootstrap.css"/>
    <link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/styles.css" />
    <link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/people.css" />
    <link rel="shortcut icon" href="https://secwiki.b0.upaiyun.com/img/favicon.ico">
	<meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <script src="//upcdn.b0.upaiyun.com/libs/jquery/jquery-1.8.3.min.js"></script>
</head>

<body>
<div class="navbar navbar-fixed-top"><div class="navbar-inner"><div class="container"><a class="btn btn-navbar" data-toggle="collapse" data-target="#yii_bootstrap_collapse_0"><span class="icon-bar"></span><span class="icon-bar"></span><span class="icon-bar"></span></a><a href="/index.php" class="brand"><img src="https://secwiki.b0.upaiyun.com/logo.jpg" alt="" /></a><div class="nav-collapse collapse" id="yii_bootstrap_collapse_0"><form class="navbar-search pull-right" action="/news/search">
         <input type="text" class="search-query span2" name="wd" placeholder="SecWiki">
        </form>
    	<ul id="yw0" class="nav"><li><a href="/index.php">首页</a></li><li><a href="/event">新闻</a></li><li><a href="/news">技术</a></li><li><a href="/skill">技能</a></li><li><a href="/topic">专题</a></li><li><a href="/book">书籍</a></li><li><a href="/user/members">成员</a></li><li><a href="/opml/index">聚合</a></li><li><a href="/tougao/create">投稿</a></li></ul></div></div></div></div>
<div class="container" id="page">
			<!-- breadcrumbs -->
	
    <div style="margin-left: 15px;">
	    <div class="row-fluid">
    <div id="content">
            <link rel="stylesheet" type="text/css" href="/css/mweekly.css"/>

<h5><strong>SecWiki周刊（第209期）</strong></h5>
<blockquote> 2018/02/26-2018/03/04</blockquote>
<section id="news">
    <div class="weeklydivide">
      <strong>安全资讯</strong>
    </div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>百度文库被发现上传了日企的内部机密文件<br><a target="_blank" href="https://www.solidot.org/story?sid=55661">https://www.solidot.org/story?sid=55661</a></div><div class="single"><span id="tags">[观点]&nbsp;&nbsp;</span>币圈一日，人间十年：黑客想了三刻钟就笑了<br><a target="_blank" href="http://www.freebuf.com/articles/neopoints/163671.html">http://www.freebuf.com/articles/neopoints/163671.html</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>教育部办公厅关于印发《2018年教育信息化和网络安全工作要点》的通知<br><a target="_blank" href="http://www.edu.cn/xxh/focus/zc/201803/t20180301_1587275.shtml">http://www.edu.cn/xxh/focus/zc/201803/t20180301_1587275.shtml</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>GitHub 遭到 1.35Tbps 的 DDoS 攻击<br><a target="_blank" href="https://www.solidot.org/story?sid=55657">https://www.solidot.org/story?sid=55657</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>腾讯联合联发科发布TRP-AI反病毒引擎<br><a target="_blank" href="http://tech.qq.com/a/20180226/020272.htm">http://tech.qq.com/a/20180226/020272.htm</a></div></section><section id="news">
    <div class="weeklydivide">
      <strong>安全技术</strong>
    </div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>Windows / Linux Local Privilege Escalation Workshop<br><a target="_blank" href="https://github.com/sagishahar/lpeworkshop">https://github.com/sagishahar/lpeworkshop</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>Tomcat CVE-2018-1305 分析<br><a target="_blank" href="https://mp.weixin.qq.com/s/PZsOQy2lpR1lHqLWmAXlbg">https://mp.weixin.qq.com/s/PZsOQy2lpR1lHqLWmAXlbg</a></div><div class="single"><span id="tags">[观点]&nbsp;&nbsp;</span>我的面经，渗透测试<br><a target="_blank" href="https://xianzhi.aliyun.com/forum/topic/2091">https://xianzhi.aliyun.com/forum/topic/2091</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>金融科技SDL安全设计checklist<br><a target="_blank" href="https://mp.weixin.qq.com/s/MR3SmOLj834LK4RBMcZ2pg">https://mp.weixin.qq.com/s/MR3SmOLj834LK4RBMcZ2pg</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>FLASH 0day(CVE-2018-4878)从POC到利用<br><a target="_blank" href="https://mp.weixin.qq.com/s/F2N04exaW8QO1IeHRZgmfg">https://mp.weixin.qq.com/s/F2N04exaW8QO1IeHRZgmfg</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>渗透技巧—利用Masterkey离线导出Chrome浏览器中保存的密码<br><a target="_blank" href="http://www.4hou.com/technology/10474.html">http://www.4hou.com/technology/10474.html</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>iZhanCMS_v2.1 漏洞分析<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzA3NzE2MjgwMg==&amp;mid=2448903583&amp;idx=1&amp;sn=172d776a85dc99863d6d9450ef940b1e&amp;chksm=8b55ddc2bc2254d4ebff63e83031e422239aa4a945d5699cc2cfe2eb18e6cd413a90d41823d4&amp;mpshare=1&amp;scene=23&amp;srcid=0303eUNXG8ydUHQN0DtMhZMy#rd">https://mp.weixin.qq.com/s?__biz=MzA3NzE2MjgwMg==&amp;mid=2448903583&amp;idx=1&amp;sn=172d776a85dc99863d6d9450ef940b1e&amp;chksm=8b55ddc2bc2254d4ebff63e83031e422239aa4a945d5699cc2cfe2eb18e6cd413a90d41823d4&amp;mpshare=1&amp;scene=23&amp;srcid=0303eUNXG8ydUHQN0DtMhZMy#rd</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>PaddlePaddle平台对抗样本工具包Advbox<br><a target="_blank" href="https://mp.weixin.qq.com/s/_r6d2uQ3aHcOZe8uLKAbYg">https://mp.weixin.qq.com/s/_r6d2uQ3aHcOZe8uLKAbYg</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>2017年度黑灰产画像：黑灰产服务型产业链报告<br><a target="_blank" href="https://mp.weixin.qq.com/s/jb7Cl3YXNRAfN-2Awuewig">https://mp.weixin.qq.com/s/jb7Cl3YXNRAfN-2Awuewig</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>Effective and Real-time In-App Activity Analysis in Encrypted Internet Traffic Streams<br><a target="_blank" href="http://www.kdd.org/kdd2017/papers/view/effective-and-real-time-in-app-activity-analysis-in-encrypted-internet-traf">http://www.kdd.org/kdd2017/papers/view/effective-and-real-time-in-app-activity-analysis-in-encrypted-internet-traf</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>SQL injection: 9 ways to bypass Web Application Firewall<br><a target="_blank" href="https://www.digitalmunition.me/2018/02/sql-injection-9-ways-bypass-web-application-firewall/">https://www.digitalmunition.me/2018/02/sql-injection-9-ways-bypass-web-application-firewall/</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>渗透的本质是信息搜集（第一季）<br><a target="_blank" href="http://blog.csdn.net/micropoor/article/details/79400904">http://blog.csdn.net/micropoor/article/details/79400904</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>看雪论坛精华17<br><a target="_blank" href="https://bbs.pediy.com/thread-224671.htm">https://bbs.pediy.com/thread-224671.htm</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>WebEye-自动化恶意 HTTP 流量收集<br><a target="_blank" href="https://arxiv.org/pdf/1802.06012.pdf">https://arxiv.org/pdf/1802.06012.pdf</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>基于Memcached分布式系统DRDoS拒绝服务攻击技术研究<br><a target="_blank" href="http://blog.csdn.net/microzone/article/details/79262549">http://blog.csdn.net/microzone/article/details/79262549</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>基于 S2E 符号执行分析平台自动化地发现漏洞、生成 PoC<br><a target="_blank" href="https://github.com/S2E/docs/blob/master/src/Tutorials/pov.rst">https://github.com/S2E/docs/blob/master/src/Tutorials/pov.rst</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>渗透基础——获得当前系统已安装的程序列表<br><a target="_blank" href="https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E5%9F%BA%E7%A1%80-%E8%8E%B7%E5%BE%97%E5%BD%93%E5%89%8D%E7%B3%BB%E7%BB%9F%E5%B7%B2%E5%AE%89%E8%A3%85%E7%9A%84%E7%A8%8B%E5%BA%8F%E5%88%97%E8%A1%A8/">https://3gstudent.github.io/3gstudent.github.io/%E6%B8%97%E9%80%8F%E5%9F%BA%E7%A1%80-%E8%8E%B7%E5%BE%97%E5%BD%93%E5%89%8D%E7%B3%BB%E7%BB%9F%E5%B7%B2%E5%AE%89%E8%A3%85%E7%9A%84%E7%A8%8B%E5%BA%8F%E5%88%97%E8%A1%A8/</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>浅析Gartner评出的十一大信息安全技术 <br><a target="_blank" href="https://www.sec-un.org/%E6%B5%85%E6%9E%90gartner%E8%AF%84%E5%87%BA%E7%9A%84%E5%8D%81%E4%B8%80%E5%A4%A7%E4%BF%A1%E6%81%AF%E5%AE%89%E5%85%A8%E6%8A%80%E6%9C%AF/">https://www.sec-un.org/%E6%B5%85%E6%9E%90gartner%E8%AF%84%E5%87%BA%E7%9A%84%E5%8D%81%E4%B8%80%E5%A4%A7%E4%BF%A1%E6%81%AF%E5%AE%89%E5%85%A8%E6%8A%80%E6%9C%AF/</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>实施规划和架构设计-ArcSight实战系列之二<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247484002&amp;idx=1&amp;sn=962231e3b73e3e9c7f3d2472ab57949a&amp;chksm=ea4ba825dd3c213343ee20a51786b1cd9db48242f668b048e5b25f4fd3b1cafebee04784c6e1#rd">https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247484002&amp;idx=1&amp;sn=962231e3b73e3e9c7f3d2472ab57949a&amp;chksm=ea4ba825dd3c213343ee20a51786b1cd9db48242f668b048e5b25f4fd3b1cafebee04784c6e1#rd</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>威胁猎人：2017年度中国互联网黑产报告<br><a target="_blank" href="http://mp.weixin.qq.com/s/evGK8v2rjM4IGYODYXFvtA">http://mp.weixin.qq.com/s/evGK8v2rjM4IGYODYXFvtA</a></div><div class="single"><span id="tags">[观点]&nbsp;&nbsp;</span>一个网络安全老兵眼中的网络信息安全服务企业 <br><a target="_blank" href="https://www.sec-un.org/%e4%b8%80%e4%b8%aa%e7%bd%91%e7%bb%9c%e5%ae%89%e5%85%a8%e8%80%81%e5%85%b5%e7%9c%bc%e4%b8%ad%e7%9a%84%e7%bd%91%e7%bb%9c%e4%bf%a1%e6%81%af%e5%ae%89%e5%85%a8%e6%9c%8d%e5%8a%a1%e4%bc%81%e4%b8%9a/">https://www.sec-un.org/%e4%b8%80%e4%b8%aa%e7%bd%91%e7%bb%9c%e5%ae%89%e5%85%a8%e8%80%81%e5%85%b5%e7%9c%bc%e4%b8%ad%e7%9a%84%e7%bd%91%e7%bb%9c%e4%bf%a1%e6%81%af%e5%ae%89%e5%85%a8%e6%9c%8d%e5%8a%a1%e4%bc%81%e4%b8%9a/</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>CVE-2018-4087 PoC: Escaping the sandbox by misleading bluetoothd<br><a target="_blank" href="http://blog.zimperium.com/cve-2018-4087-poc-escaping-sandbox-misleading-bluetoothd/">http://blog.zimperium.com/cve-2018-4087-poc-escaping-sandbox-misleading-bluetoothd/</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>SQL注入ByPass的一些小技巧<br><a target="_blank" href="https://mp.weixin.qq.com/s/fSBZPkO0-HNYfLgmYWJKCg">https://mp.weixin.qq.com/s/fSBZPkO0-HNYfLgmYWJKCg</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>解决DEDECMS历史难题--找后台目录<br><a target="_blank" href="https://xianzhi.aliyun.com/forum/topic/2064">https://xianzhi.aliyun.com/forum/topic/2064</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>ESD: Enumeration sub domains(枚举子域名)<br><a target="_blank" href="https://github.com/FeeiCN/ESD">https://github.com/FeeiCN/ESD</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>cloudmapper: 生成AWS环境的网络拓扑图<br><a target="_blank" href="https://github.com/duo-labs/cloudmapper">https://github.com/duo-labs/cloudmapper</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>韩家炜在数据挖掘上开辟的「小路」是什么<br><a target="_blank" href="https://mp.weixin.qq.com/s/5UyAoAm0Llfm3YoobKSSCA">https://mp.weixin.qq.com/s/5UyAoAm0Llfm3YoobKSSCA</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>HTML5 Security Cheat Sheet<br><a target="_blank" href="https://www.owasp.org/index.php/HTML5_Security_Cheat_Sheet">https://www.owasp.org/index.php/HTML5_Security_Cheat_Sheet</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Java反序列化漏洞学习实践一：从Serializbale接口开始，先弹个计算器<br><a target="_blank" href="http://www.polaris-lab.com/index.php/archives/447/">http://www.polaris-lab.com/index.php/archives/447/</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>我的CISSP之路<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483794&amp;idx=1&amp;sn=2610fd4599ccc774ea9c24d554750af5&amp;chksm=ea4babd5dd3c22c32f6702cd0949da2cfef9cf766a67e6abb64753a66e89fbce3f8799a7efe6#rd">https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483794&amp;idx=1&amp;sn=2610fd4599ccc774ea9c24d554750af5&amp;chksm=ea4babd5dd3c22c32f6702cd0949da2cfef9cf766a67e6abb64753a66e89fbce3f8799a7efe6#rd</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>Tallow: Transparent Tor for Windows<br><a target="_blank" href="https://reqrypt.org/tallow.html">https://reqrypt.org/tallow.html</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>漏洞分析与实践之基于SAML实现的单点登录系统 <br><a target="_blank" href="http://avfisher.win/archives/906">http://avfisher.win/archives/906</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>Exploit SSTI in Flask/Jinja2<br><a target="_blank" href="https://joychou.org/web/exploit-ssti-in-flask-jinja2.html">https://joychou.org/web/exploit-ssti-in-flask-jinja2.html</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>EvilOSX：macOS/OSX后渗透工具<br><a target="_blank" href="https://github.com/Marten4n6/EvilOSX">https://github.com/Marten4n6/EvilOSX</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>谷歌上线自带中文的机器学习免费课程<br><a target="_blank" href="https://mp.weixin.qq.com/s/U2XBScWThbIEB4EdV4q63A">https://mp.weixin.qq.com/s/U2XBScWThbIEB4EdV4q63A</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>Android动态日志系统Holmes<br><a target="_blank" href="https://tech.meituan.com/android_holmes.html">https://tech.meituan.com/android_holmes.html</a></div><div class="single"><span id="tags">[论文]&nbsp;&nbsp;</span>密码科学技术国家重点实验室2018年开放课题发布<br><a target="_blank" href="https://mp.weixin.qq.com/s/u1mDFINefmUEeeDsYrUsAw">https://mp.weixin.qq.com/s/u1mDFINefmUEeeDsYrUsAw</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>CredSniper: phishing framework written with the Flask and Jinja2<br><a target="_blank" href="https://github.com/ustayready/CredSniper">https://github.com/ustayready/CredSniper</a></div><div class="single"><span id="tags">[无线安全]&nbsp;&nbsp;</span>基于软件无线电对无线领域进行探索<br><a target="_blank" href="https://unicorn.360.com/blog/2017/12/28/dc010_Exploring_the_Wireless_World_With_SDR/">https://unicorn.360.com/blog/2017/12/28/dc010_Exploring_the_Wireless_World_With_SDR/</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>Memcached之反射拒绝服务攻击技术原理 <br><a target="_blank" href="http://blog.topsec.com.cn/ad_lab/memcached%e4%b9%8b%e5%8f%8d%e5%b0%84%e6%8b%92%e7%bb%9d%e6%9c%8d%e5%8a%a1%e6%94%bb%e5%87%bb%e6%8a%80%e6%9c%af%e5%8e%9f%e7%90%86/?from=timeline">http://blog.topsec.com.cn/ad_lab/memcached%e4%b9%8b%e5%8f%8d%e5%b0%84%e6%8b%92%e7%bb%9d%e6%9c%8d%e5%8a%a1%e6%94%bb%e5%87%bb%e6%8a%80%e6%9c%af%e5%8e%9f%e7%90%86/?from=timeline</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Python大法之从火车余票查询到打造抢Supreme神器<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-34102-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-34102-1-1.html?from=sec</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>Gophish: Open-Source Phishing Framework<br><a target="_blank" href="https://getgophish.com/">https://getgophish.com/</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>ArcSight简介-ArcSight技术系列之一<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483846&amp;idx=1&amp;sn=22671cab5c81369c4d9135b2a604a421&amp;chksm=ea4bab81dd3c22972d3112979eb089b50a23786b7af78f7cb34451d4723fb72be650056184d9#rd">https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483846&amp;idx=1&amp;sn=22671cab5c81369c4d9135b2a604a421&amp;chksm=ea4bab81dd3c22972d3112979eb089b50a23786b7af78f7cb34451d4723fb72be650056184d9#rd</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>企业安全建设之安全规划<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483834&amp;idx=1&amp;sn=13a20403f381610556c4354e83159a5c&amp;chksm=ea4babfddd3c22eb6f7b548825364e856e3df27d2cc701c739033952e45744f6286613ebe0f1#rd">https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483834&amp;idx=1&amp;sn=13a20403f381610556c4354e83159a5c&amp;chksm=ea4babfddd3c22eb6f7b548825364e856e3df27d2cc701c739033952e45744f6286613ebe0f1#rd</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>Altprobe - IDS events collector<br><a target="_blank" href="https://github.com/olegzhr/altprobe">https://github.com/olegzhr/altprobe</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>Cobalt Strike神器高级教程利用Aggressor脚本编写目标上线邮件提醒<br><a target="_blank" href="https://www.anquanke.com/post/id/98829">https://www.anquanke.com/post/id/98829</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>绕过某cms自定义检查函数的SQL注入<br><a target="_blank" href="https://xianzhi.aliyun.com/forum/topic/2094">https://xianzhi.aliyun.com/forum/topic/2094</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>从救火到先知，DNS安全分析场景实践谈 <br><a target="_blank" href="https://www.sec-un.org/%e4%bb%8e%e6%95%91%e7%81%ab%e5%88%b0%e5%85%88%e7%9f%a5%ef%bc%8cdns%e5%ae%89%e5%85%a8%e5%88%86%e6%9e%90%e5%9c%ba%e6%99%af%e5%ae%9e%e8%b7%b5%e8%b0%88/?from=timeline">https://www.sec-un.org/%e4%bb%8e%e6%95%91%e7%81%ab%e5%88%b0%e5%85%88%e7%9f%a5%ef%bc%8cdns%e5%ae%89%e5%85%a8%e5%88%86%e6%9e%90%e5%9c%ba%e6%99%af%e5%ae%9e%e8%b7%b5%e8%b0%88/?from=timeline</a></div><div class="single"><span id="tags">[观点]&nbsp;&nbsp;</span>2017-2018年中国数据防泄漏（DLP）市场分析 <br><a target="_blank" href="https://www.sec-un.org/2017-2018%e5%b9%b4%e4%b8%ad%e5%9b%bd%e6%95%b0%e6%8d%ae%e9%98%b2%e6%b3%84%e6%bc%8f%ef%bc%88dlp%ef%bc%89%e5%b8%82%e5%9c%ba%e5%88%86%e6%9e%90/">https://www.sec-un.org/2017-2018%e5%b9%b4%e4%b8%ad%e5%9b%bd%e6%95%b0%e6%8d%ae%e9%98%b2%e6%b3%84%e6%bc%8f%ef%bc%88dlp%ef%bc%89%e5%b8%82%e5%9c%ba%e5%88%86%e6%9e%90/</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>SANS：2018年网络威胁情报现状调研报告<br><a target="_blank" href="http://blog.51cto.com/yepeng/2073791">http://blog.51cto.com/yepeng/2073791</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>SPF: SpeedPhishing simple social engineering phishing framework<br><a target="_blank" href="https://github.com/tatanus/SPF">https://github.com/tatanus/SPF</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>利用Raspberry PI 3打造AWS VPN用户网关<br><a target="_blank" href="http://www.4hou.com/tools/10488.html">http://www.4hou.com/tools/10488.html</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>企业安全建设之矩阵式监控提升安全有效性实践<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483804&amp;idx=1&amp;sn=32986ddcfe041260ad504bcdc2f49d16&amp;chksm=ea4babdbdd3c22cda53cccf39f4678d12d1a95a78996823e8c5d1a30f976e53086828004c94d#rd">https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&amp;mid=2247483804&amp;idx=1&amp;sn=32986ddcfe041260ad504bcdc2f49d16&amp;chksm=ea4babdbdd3c22cda53cccf39f4678d12d1a95a78996823e8c5d1a30f976e53086828004c94d#rd</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Cobalt Strike中DNS隐蔽隧道的利用，以及使用DLP进行检测<br><a target="_blank" href="https://www.anquanke.com/post/id/99408">https://www.anquanke.com/post/id/99408</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>某CMS V5.7 SP2 后台Getshell<br><a target="_blank" href="https://xianzhi.aliyun.com/forum/topic/2071">https://xianzhi.aliyun.com/forum/topic/2071</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>2017年Android恶意软件专题报告<br><a target="_blank" href="http://blogs.360.cn/blog/review_android_malware_of_2017-2/">http://blogs.360.cn/blog/review_android_malware_of_2017-2/</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>The Easiest Metasploit Guide You’ll Ever Read<br><a target="_blank" href="https://a.ndronic.us/guides/metasploit/html/index.html">https://a.ndronic.us/guides/metasploit/html/index.html</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Memcache UDP反射放大攻击技术分析<br><a target="_blank" href="http://blog.netlab.360.com/what-we-know-about-memcache-udp-reflection-ddos/">http://blog.netlab.360.com/what-we-know-about-memcache-udp-reflection-ddos/</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>旅行青蛙逆向破解的自我实践之旅<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-34154-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-34154-1-1.html?from=sec</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>MADLIRA - 通过机器学习和信息检索检测 Android 恶意软件<br><a target="_blank" href="https://github.com/dkhuuthe/MADLIRA">https://github.com/dkhuuthe/MADLIRA</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>Harpoon: an OSINT / Threat Intelligence tool<br><a target="_blank" href="https://www.randhome.io/blog/2018/02/23/harpoon-an-osint-/-threat-intelligence-tool/">https://www.randhome.io/blog/2018/02/23/harpoon-an-osint-/-threat-intelligence-tool/</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>Docker Swarm容器集群管理工具<br><a target="_blank" href="https://jiayi.space/post/docker-swarmrong-qi-ji-qun-guan-li-gong-ju">https://jiayi.space/post/docker-swarmrong-qi-ji-qun-guan-li-gong-ju</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>china-operator-ip: 中国运营商IP地址库(每日更新)<br><a target="_blank" href="https://github.com/gaoyifan/china-operator-ip">https://github.com/gaoyifan/china-operator-ip</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Java反序列化漏洞学习实践二：Java的反射机制（Java Reflection）<br><a target="_blank" href="http://www.polaris-lab.com/index.php/archives/450/">http://www.polaris-lab.com/index.php/archives/450/</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>JavaScript的反调试技术（上篇）<br><a target="_blank" href="http://www.4hou.com/technology/10470.html">http://www.4hou.com/technology/10470.html</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>python沙箱逃逸小结<br><a target="_blank" href="https://blog.sectown.cn/archives/41/">https://blog.sectown.cn/archives/41/</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>A guide to Linux Privilege Escalation<br><a target="_blank" href="https://payatu.com/guide-linux-privilege-escalation/">https://payatu.com/guide-linux-privilege-escalation/</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>OAuth2.0认证缺陷-第三方帐号快捷登录授权劫持漏洞<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-34168-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-34168-1-1.html?from=sec</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>Script to steal passwords from ssh.<br><a target="_blank" href="https://github.com/mthbernardes/sshLooter">https://github.com/mthbernardes/sshLooter</a></div><div class="single"><span id="tags">[设备安全]&nbsp;&nbsp;</span>evading-autoruns<br><a target="_blank" href="https://github.com/huntresslabs/evading-autoruns">https://github.com/huntresslabs/evading-autoruns</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>2017 中国高级持续性威胁（APT）研究报告<br><a target="_blank" href="https://mp.weixin.qq.com/s/Qxp9fJKQk-ONl0JdCZM3tg">https://mp.weixin.qq.com/s/Qxp9fJKQk-ONl0JdCZM3tg</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>学界与工业界的AI研究：有哪些重要不同？<br><a target="_blank" href="https://mp.weixin.qq.com/s/mWaHqfCQKm1eJrZZIcgibA">https://mp.weixin.qq.com/s/mWaHqfCQKm1eJrZZIcgibA</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>Chrome 扩展安全研究: 一个UXSS的挖掘经历<br><a target="_blank" href="https://www.anquanke.com/post/id/98917">https://www.anquanke.com/post/id/98917</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Java反序列化漏洞学习实践三：理解Java的动态代理机制<br><a target="_blank" href="http://www.polaris-lab.com/index.php/archives/453/">http://www.polaris-lab.com/index.php/archives/453/</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>Yet another LKM rootkit for Linux. It hooks syscall table.<br><a target="_blank" href="https://github.com/Eterna1/puszek-rootkit">https://github.com/Eterna1/puszek-rootkit</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>暗云实战中的威胁溯源方法<br><a target="_blank" href="https://mp.weixin.qq.com/s/VT0npkPY8byBLA6WTTMAyw">https://mp.weixin.qq.com/s/VT0npkPY8byBLA6WTTMAyw</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>使用Windows命令来实现端口转发<br><a target="_blank" href="https://xianzhi.aliyun.com/forum/topic/2068">https://xianzhi.aliyun.com/forum/topic/2068</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>利用符号执行的方法动态发现驱动的 IOCTL Codes<br><a target="_blank" href="https://gist.github.com/jthuraisamy/06a28d7ebb60dd47386477af68d8cbcf">https://gist.github.com/jthuraisamy/06a28d7ebb60dd47386477af68d8cbcf</a></div><div class="single"><span id="tags">[设备安全]&nbsp;&nbsp;</span>IDAPythonEmbeddedToolkit - 用于自动化分析嵌入式设备固件的 IDAPython 脚本<br><a target="_blank" href="https://github.com/maddiestone/IDAPythonEmbeddedToolkit">https://github.com/maddiestone/IDAPythonEmbeddedToolkit</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>VwFirewall: 微盾VirtualWall防火墙整套源代码<br><a target="_blank" href="https://github.com/dekuan/VwFirewall">https://github.com/dekuan/VwFirewall</a></div><div class="single"><span id="tags">[文档]&nbsp;&nbsp;</span>antivirus_-understanding-evading<br><a target="_blank" href="https://diablohorn.files.wordpress.com/2018/02/antivirus_-understanding-evading.pdf">https://diablohorn.files.wordpress.com/2018/02/antivirus_-understanding-evading.pdf</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>终端检测与防护产品收集列表更新<br><a target="_blank" href="http://www.hexacorn.com/blog/2018/02/25/endpoint-detection-and-response-edr-solutions-sheet-update-2/">http://www.hexacorn.com/blog/2018/02/25/endpoint-detection-and-response-edr-solutions-sheet-update-2/</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>how-to-clear-rdp-connections-history<br><a target="_blank" href="http://woshub.com/how-to-clear-rdp-connections-history/">http://woshub.com/how-to-clear-rdp-connections-history/</a></div></section>
<section id="news">
        <pre style="margin-top: 15px; margin-bottom: 15px; padding: 6px 10px; max-width: 100%; color: rgb(62, 62, 62); background-color: rgb(255, 255, 255); -webkit-print-color-adjust: exact; border-width: 1px; border-style: solid; border-color: rgb(204, 204, 204); font-size: 13px; line-height: 19px; overflow: auto; border-radius: 3px; box-sizing: border-box !important; word-wrap: break-word !important;"><code class="" style="max-width: 100%; -webkit-print-color-adjust: exact; border-width: initial; border-style: none; border-color: initial; background-color: transparent; border-radius: 3px; box-sizing: border-box !important; word-wrap: break-word !important;">-----微信ID：SecWiki-----
SecWiki，5年来一直专注安全技术资讯分析！
SecWiki：https://www.sec-wiki.com</code></pre>
    <p style="max-width: 100%; min-height: 1em; color: rgb(62, 62, 62); font-size: 16px; white-space: normal; background-color: rgb(255, 255, 255); box-sizing: border-box !important; word-wrap: break-word !important;"><span style="max-width: 100%; font-size: 14px; box-sizing: border-box !important; word-wrap: break-word !important;">本期原文地址:<span style="max-width: 100%; font-family: Helvetica, arial, sans-serif; box-sizing: border-box !important; word-wrap: break-word !important;">&nbsp;<a href="https://www.sec-wiki.com/weekly/209">SecWiki周刊(第209期)</a></span><br style="max-width: 100%; box-sizing: border-box !important; word-wrap: break-word !important;"></span></p>
</section>
    </div><!-- content -->
</div>
    </div>
</div>

<div id="footer" class="footer">
		<div class="container"  style="margin-top: 5px;">
			<div class="span3">
				<div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/index">最新公告</a>						<span class="line"></span>
					</h5>
					<p>
						<a href='http://www.sec-wiki.com/about/donate'>2016-01-01 打赏功能开通</a><br>
						<a href='http://www.sec-wiki.com/about/join'>2015-01-05 如何加入SecWiki</a><br>
						<a href='http://www.sec-wiki.com/about/submit'>2014-08-08 如何快捷提交资讯</a><br>
						<a href='http://www.sec-wiki.com/about/index'>2012-07-01 关于SecWiki</a><br>
				</div>
			</div>

			<div class="span5">
				<div class="one-third column">
					<h5 class="title">
						<a target="_blank" href="/nav/index">友情链接</a>						<span class="line"></span>
					</h5>
					<p>
						<a href='https://www.secsilo.com/'>安全沙漏</a>&nbsp;
						<a href='http://www.freebuf.com/'>Freebuf</a>&nbsp;
						<a href='http://www.anquanquan.info/'>安全圈</a>&nbsp;
						<a href='http://navisec.it/'>Navisec</a>&nbsp;
                        <a href='http://das.scusec.org'>小黑屋</a>&nbsp;
                        <a href='http://www.polaris-lab.com/'>勾陈Lab</a>
                        <br>
						<a href='http://www.ijiandao.com'>网络尖刀</a>&nbsp;
                        <a href='http://www.shellpub.com/'>ShellPub</a>&nbsp;
                        <a href='http://www.secpulse.com/?secwiki'>SecPulse</a>&nbsp;
                        <a href='https://www.secquan.org/'>圈子</a>
                        <a href='http://bluereader.org/'>深蓝阅读</a>&nbsp;<br>
                        <a href='http://www.bugbank.cn/'>漏洞银行</a>
                        <a href='http://bobao.360.cn/'>安全客</a>
                        <a href='http://www.secfree.com/'>指尖安全</a>
                        <a href='https://www.easyaq.com/'>E安全</a>
                        <a href='http://www.vipread.com/'>安全slide</a>

                        <a href="/link">更多</a>
					</p>
				</div>
			</div>

			<div class="span2">
			    <div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/index">SecWiki公众号</a>						<span class="line"></span>
					</h5>
					<div style="margin-top:15px; width: 90px; height: 90px;">
						<img src="https://secwiki.b0.upaiyun.com/weixin.jpg">
					</div>
				</div>
			</div>

			<div class="span2">
				<div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/donate">安全学术圈</a>					<span class="line"></span>
					</h5>
					<div style="margin-top:15px; width: 90px; height: 90px;">
						<img src="https://secwiki.b0.upaiyun.com/secquan.jpg">
					</div>
				</div>
			</div>

		</div>
		<div class="container" style="margin-top:5px;margin-bottom: 10px;">
			<div class="span9">
					Copyright &copy;
					2019                    琼ICP备16003361号-4
                    SecWiki
					<a href="/news/rss">
						<img src="/img/rss.gif" border="0" width="36px" height="14px" alt="订阅SecWiki">
					</a>
					<a href="https://www.upyun.com/">
						<img src="https://secwiki.b0.upaiyun.com/upyun.png" width="80" border="0" alt="UPYUN">
					</a>
					<a href="http://www.vultr.com/?ref=6885244">
						<img src="https://secwiki.b0.upaiyun.com/vultr.png" width="100" border="0" alt="vultr">
					</a>&nbsp;&nbsp;
			</div>
		</div>
</div><!-- footer -->
<div id="csswithjs">
        <script type="text/javascript">
            var _bdhmProtocol = (("https:" == document.location.protocol) ? " https://" : " http://");
            document.write(unescape("%3Cscript src='" + _bdhmProtocol + "hm.baidu.com/h.js%3Fbad84ea1f314383f8da7949aad5c2199' type='text/javascript'%3E%3C/script%3E"));
    </script>
</div>
<script type="text/javascript" src="https://secwiki.b0.upaiyun.com/js/bs.min.js"></script>
<script type="text/javascript">
/*<![CDATA[*/
jQuery(function($) {
jQuery('[data-toggle=popover]').popover();
jQuery('body').tooltip({"selector":"[data-toggle=tooltip]"});
jQuery('#yii_bootstrap_collapse_0').collapse({'parent':false,'toggle':false});
});
/*]]>*/
</script>
</body>
<!-- page -->
</html>
